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CLAIMS 



What is claimed is: 



1. 



A secure processing system for a communication 



5 device comprising: 

a host processor; and 

a secure memory coupled to the host processor by a 
data bus, wherein the secure memory comprises: 

a laser-scribed encryption key; 
10 encryption logic circuitry for implementing a 

symmetric encryption algorithm using the laser-scribed 
encryption key; 

a plurality of blocking gates coupling the 
encryption logic circuitry with the laser-scribed 
15 encryption key; and 

a memory, 

wherein sensitive data is encrypted by the 
encryption logic circuitry using the laser-scribed 
encryption key and stored as encrypted data in a data 
20 storage medium, and 

wherein the encrypted data is decrypted by the 
encryption logic circuitry with the laser-scribed 
encryption key and transferred to the memory for use by 
the host processor. 



2. The processing system as claimed in claim 1 
wherein the memory is a zeroizable memory having a 
zeroizing input that causes the contents of the memory 
to be erased when a zeroize signal is received on the 
30 zeroizing input, and 

wherein said zeroize signal is sent to the 
zeroizable memory by a system monitor upon the 
occurrence of one of a plurality of predetermined 
conditions . 
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3. The processing system as claimed in claim 1 
wherein the host processor and secure memory are 
fabricated on an integrated circuit chip, and the 
encrypted data is stored in a non-volatile memory. 

5 

4. The processing system as claimed in claim 3 
wherein the non-volatile memory includes a portion 
internal to the integrated circuit chip and a portion 
external to the integrated circuit chip, and wherein 

10 the encrypted data is stored on the portion internal to 
the integrated circuit chip when the portion internal 
is available. 

5. The processing system as claimed in claim 1 
15 wherein the blocking gates are comprised of logic 

gates and have a blocking control signal input 
preventing access to the laser-scribed encryption key 
by the encryption logic circuitry. 

20 6. The processing system as claimed in claim 1 

wherein the laser-scribed encryption key is stored in a 
one-time programmable memory element. 

7. The processing system as claimed in claim 1 
25 wherein the laser-scribed encryption key is stored in 
non-volatile memory selected from one of the group 
consisting of ROM, EE PROM, MRAM (Magnetoresistive RAM) , 
battery backed RAM or DRAM and fast logic. 
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8. The processing system as claimed in claim 1 
wherein the laser-scribed encryption key is generated 
by laser-scribing a semiconductor die during 
fabrication of the secure memory to create a plurality 

5 of fixed "ones" and "zeroes" which make up the laser- 
scribed encryption key, and 

wherein the laser-scribed encryption key has a 
value that is randomly generated and is unique for each 
secure memory of a plurality of secure memories of 
10 different processing systems. 

9. The processing system as claimed in claim 1 
wherein the laser-scribed encryption key is generated 
by burning one-time programmable fuses on a 

15 semiconductor die to create a plurality of fixed "ones" 
and "zeroes" which make up the laser-scribed encryption 
key, and 

wherein the laser-scribed encryption key has a 
value that is randomly generated and is unique for each 
20 secure memory of a plurality of secure memories of 
different processing systems. 



10. The processing system as claimed in claim 1 
wherein the symmetric encryption algorithm is a block 

25 cipher encryption algorithm. 

11. The processing system as claimed in claim 1 
wherein the host processor is coupled to an external 
memory having a secret key stored therein in encrypted 

30 form, the secret key being encrypted with the laser- 
scribed encryption key, and said secret key being used 
for secure communication between the communication 
device and other communication devices. 
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12. A secure communication device comprising: 
a host processor; 

a secure memory coupled to the host processor by a 
data bus, the secure memory including a laser-scribed 
5 encryption key; and 

a non-secure memory coupled to host processor for 
storing encrypted data, 

wherein sensitive data is encrypted within the 
secure memory using the laser-scribed encryption key 
10 and stored as encrypted data in the non-secure memory, 
and 

wherein the encrypted data is decrypted within the 
O secure memory using the laser-scribed encryption key 

5* and stored within the secure memory for use by the host 

%j 15 processor. 

jp 13. The communication device as claimed in claim 

J3 12 wherein the non-secure memory has a secret key 

™ stored therein in encrypted form, the secret key being 

yrj 20 encrypted with the laser-scribed encryption key, and 

\H said secret key being used for secure communication 

q between the communication device and other 

Q communication devices. 

25 14. The communication device as claimed in claim 

12 wherein the communication device is a data 
communication device, and wherein the secret key is a 
private key unique to a user of the communication 
device and is part of a public-private key pair, the 

30 private key being used for decrypting data sent to said 
user, and wherein prior to using said secret key, said 
secret key being decrypted by encryption logic of the 
secure memory using the laser-scribed encryption key 
and stored in unencrypted form in a zeroizable memory. 



-19- 



GE04592 



15. The communication device as claimed in claim 
14 wherein the data communication device is adapted for 
transmitting data to another communication device, and 
wherein the secret key is further used to generate a 

5 digital signature associated with said data, said 
digital signature being transmitted along with said 
data . 

16. The communication device as claimed in claim 
10 12 wherein the communication device is a wireless 

communication device for communicating secured voice, 
and wherein the secret key is used for generating a 
common session key for communicating with another 
communication device, 
15 and wherein prior to using said secret key, said 

secret key being decrypted by encryption logic of the 
secure memory using the laser-scribed encryption key 
and stored in unencrypted form in zeroizable memory. 

20 17. The communication device as claimed in claim 

12 wherein the secret key is one of a plurality of 
secret encryption keys stored in encrypted form in the 
non-secure memory, the plurality of secret keys being 
encrypted with the laser-scribed encryption key, and 

25 wherein one of the secret keys of the plurality is 

selected for secure communication between the 
communication device and other communication device, 
and wherein a zeroizable memory is cleared after 
communication with the other communication device, and 

30 wherein prior to using said selected secret key, 

said selected secret key is decrypted by the encryption 
logic using the laser-scribed encryption key and stored 
in unencrypted form in the zeroizable memory. 



35 



-20- 




GE04592 



18. The communication device as claimed in claim 
12 wherein the secure memory further comprises: 

a plurality of blocking gates coupled to the 
laser-scribed encryption key; 
5 encryption logic circuitry for implementing a 

symmetric encryption algorithm using the laser-scribed 
encryption key and coupled to the blocking gates; and 

a zeroizable memory coupled to the encryption 
logic circuitry, 
10 wherein sensitive data is encrypted by the 

encryption logic circuitry using the laser-scribed 
encryption key and stored as encrypted data in the non- 
secure memory, and 

wherein the encrypted data is decrypted by the 
15 encryption logic circuitry with the laser-scribed 

encryption key and transferred to the zeroizable memory 
for use by the host processor. 



-21- 




GE04592 



19. A method of using secure information 
utilizing a secure communication device, the secure 
communication device comprising a host processor, a 
secure memory coupled to the host processor by a data 

5 bus, and a non-secure memory coupled to host processor 
for storing encrypted data, wherein the secure memory 
includes a laser-scribed encryption key stored therein, 
the method comprising the steps of: 

encrypting sensitive data within the secure memory 
10 using the laser-scribed encryption key; 

storing the encrypted sensitive data in the non- 
secure memory; 

decrypting the encrypted sensitive data within the 
secure memory using the laser-scribed encryption key; 
15 and 

storing the decrypted sensitive data within the 
secure memory for use by the host processor. 

20. The method as claimed in claim 19 wherein the 
20 secure memory includes blocking gates coupled between 

encryption logic circuitry and the laser-scribed 
encryption key, and a zeroizable memory coupled to the 
encryption logic circuitry, and wherein the storing 
step comprises storing the decrypted sensitive data 

25 within the zeroizable memory, and wherein the method 
further comprises the steps of: 

disabling the blocking gates during the encrypting 
and decrypting steps; and 

zeroizing the zeroizable memory after the host 

30 processor is through using the decrypted sensitive data 
stored in the zeroizable memory. 
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21. The method as claimed in claim 20 further 
comprising the step of enabling the blocking gates 
preventing the encryption logic circuitry from 
accessing the laser scribed encryption key, the step of 
enabling being performed upon completion of the 
decrypting step. 



